Object Storage in Thalassa Cloud
Overview
Object storage in Thalassa Cloud provides S3-compatible, scalable storage for unstructured data such as backups, logs, media files, and application data. This storage type is designed for high availability, durability, and cost-effective storage of large amounts of data. Our Object Storage is available across all availability zones within a region.
Key Features
| Feature | Description |
|---|---|
| S3 Compatibility | Compatibility with Amazon S3 API for seamless integration with existing tools and applications. |
| High Durability | Data is replicated across multiple storage nodes and zones to ensure high availability and data protection. |
| Scalability | Automatically scales to accommodate growing storage needs without performance degradation. |
| Access Control | Granular access control through bucket policies and IAM integration. |
| Encryption | All data is encrypted at rest (at the hardware layer) and in transit. Bucket level encryption with integration into the KMS is coming Q3-Q4 2025 |
Object Storage Use Cases
Object storage is ideal for applications that require scalable, durable storage for unstructured data:
- Backup and Archive: Store long-term backups and archival data with cost-effective storage.
- Media and Content: Host images, videos, and other media files for web applications.
- Log Storage: Centralized logging for applications and infrastructure monitoring.
- Data Lakes: Store large datasets for analytics and machine learning workloads.
- Static Website Hosting: Serve static content directly from object storage buckets.
Authentication and Access
Object storage supports two types of access credentials:
Service Account Access (Recommended)
- Use Case: Systems, applications, and automated processes
- Security: Dedicated credentials with specific permissions
- Management: Managed through the Thalassa Cloud API
- Best Practice: Use for production workloads and automated systems
Personal User Access
- Use Case: Individual users and development workflows
- Security: Tied to user account with appropriate permissions
- Management: Self-service through the console or API
Bucket Management
Buckets are provisioned and managed through the Thalassa Cloud API. This centralized approach ensures consistent security policies and resource management across your organization.
Creating Buckets
Buckets can be created programmatically using the Thalassa Cloud API. Each bucket is associated with a specific region and can be configured with various settings including:
- Versioning for object history
- Lifecycle policies for automated data management
- Object lock for compliance requirements
Bucket Policies
Bucket policies are managed through the Thalassa Cloud API, and tightly integrated into our IAM. You can create bucket policies using service accounts or organisation members as the principal.
Supported S3 Operations
Thalassa Cloud object storage currently supports a sub-set of S3-compatible operations:
Object Operations
S3GetObjectVersion- Retrieve specific versions of objectsS3PutObject- Upload objects to storageS3DeleteObject- Remove objects from storageS3DeleteObjectVersion- Delete specific object versions
Multipart Upload Operations
S3ListMultipartUploadParts- List parts of multipart uploadsS3AbortMultipartUpload- Cancel multipart upload operations
Bucket Management
S3ListBucket- List objects in bucketsS3ListBucketVersions- List all versions of objectsS3ListAllMyBuckets- List all accessible buckets
Lifecycle and Retention
S3GetLifecycleConfiguration- Retrieve lifecycle policiesS3PutLifecycleConfiguration- Set lifecycle policiesS3GetObjectTagging- Get object tagsS3PutObjectTagging- Set object tagsS3DeleteObjectTagging- Remove object tagsS3GetObjectVersionTagging- Get tags for specific versionsS3PutObjectVersionTagging- Set tags for specific versionsS3DeleteObjectVersionTagging- Remove tags from specific versions
Object Lock and Compliance
S3PutBucketObjectLockConfiguration- Configure object lockS3GetBucketObjectLockConfiguration- Retrieve object lock settingsS3PutObjectRetention- Set object retention policiesS3GetObjectRetention- Get object retention settingsS3PutObjectLegalHold- Set legal hold on objectsS3GetObjectLegalHold- Check legal hold statusS3BypassGovernanceRetention- Bypass governance retention controls
Policy Management
S3GetBucketPolicyStatus- Check bucket policy status
Integration Examples
Using AWS CLI
# Configure AWS CLI with Thalassa Cloud credentials
aws configure set aws_access_key_id YOUR_ACCESS_KEY
aws configure set aws_secret_access_key YOUR_SECRET_KEY
aws configure set region nl-01
aws configure set s3.endpoint_url https://objects.nl-01.thalassa.cloud
# List buckets
aws s3 ls
# Upload a file
aws s3 cp local-file.txt s3://my-bucket/
# Download a file
aws s3 cp s3://my-bucket/remote-file.txt ./Using SDKs
Thalassa Cloud object storage is compatible with all major S3 SDKs, including:
- AWS SDK for JavaScript/TypeScript
- AWS SDK for Python (boto3)
- AWS SDK for Go
- AWS SDK for Java
- AWS SDK for .NET
Best Practices
Security
- For security, always use service accounts for production applications.
- Make sure to apply least-privilege access policies, which means giving only the necessary permissions to users.
- Currently in development, but coming soon (Q3/Q4 2025), you will also be able to enable encryption for sensitive data using KMS.
- Remember to change access credentials regularly to keep them secure.
Performance
- For better performance, use multipart uploads for files over 100MB and implement retry logic for temporary failures.
Data Safety
- Enable object versioning for critical data to aid recovery.
- Implement a solid backup strategy. For critical data, always make sure you have your data backed up, for example on a different Cloud Provider.
- Use object tags for organization and lifecycle management.
Pricing
Object storage pricing is based on hourly storage usage per gigabyte and data transfer costs (ingress/egress). For more details, visit the Thalassa Cloud pricing page or contact your account representative.